Welcome!

Java IoT Authors: Pat Romanski, Zakia Bouachraoui, Yeshim Deniz, Elizabeth White, Liz McMillan

News Feed Item

Q1 2014: Mobile Banking Trojans Double, Surge in Bitcoin Wallet Attacks, and Cyber-Espionage Threats Back from the Dead

ABINGDON, England, April 24, 2014 /PRNewswire/ --

In December, Kaspersky Lab published its  threat forecast  for 2014. Three months later, the experts  found  that all three of their 'end user forecasts' had already been confirmed.      

They said that cybercriminals would target...

-  your privacy, leading to greater popularity for VPN services and Tor-anonymisers. The number of people turning to the Darknet in an attempt to safeguard their personal data is indeed increasing. But as well as benevolent users, Tor continues to attract dark forces - anonymous networks can conceal malware activity, trading on illegal sites and money laundering. For example, in February, Kaspersky experts detected the first Android Trojan that uses a domain in the .onion pseudo zone as a C&C.  

- your money. The experts expected cybercriminals to continue developing tools to steal cash. This was confirmed by the detection of Trojan-SMS.AndroidOS.Waller.a in March. It is capable of stealing money from QIWI electronic wallets belonging to the owners of infected smartphones. The Trojan currently only targets Russian users, but it is capable of spreading anywhere where e-wallets are managed using text messages. Cybercriminals also made use of some standard approaches such as spreading Trojans for mobiles that steal money with the help of malicious spam. With these the global reach is much greater - the Faketoken mobile banking Trojan, for example, has affected users in 55 countries, including users in Germany, Sweden, France, Italy, the UK and the US.

* in Q1 the number of mobile banking Trojans almost doubled from 1321  to 2503 

- your Bitcoins. The experts expected considerable growth in the number of attacks targeting Bitcoin users' wallets, Bitcoin pools and stock exchanges. In the first three months of the year there were lots of incidents that proved this prediction was correct. Among the more newsworthy were the hack of MtGox, one of the biggest bitcoin exchanges, the hacking of the personal blog and Reddit account of MtGox CEO, Mark Karpeles, and using them to post the MtGox2014Leak.zip, which actually turned out to be malware capable of searching for and stealing Bitcoin wallet files from victims.

In a bid to boost their illicit earnings, cybercriminals infect computers and use their resources to generate more digital currency. Trojan.Win32.Agent.aduro, the twelfth most frequently detected malicious object on the Internet in Q1, is an example of a Trojan used in this type of process.  

The Living Dead: the resurrection of cyber-espionage operations  

The first quarter also saw a major cyber-espionage incident: in February, Kaspersky Lab published a report on one of the most advanced threats at the current time named 'The Mask'. The main target was confidential information belonging to state agencies, embassies, energy companies, research institutes and private investment companies, as well as activists from 31 countries. According to the researchers, the complexity of the toolset used by the attackers and several other factors suggest this could be a state-sponsored campaign.  

"As well as new incidents, we saw the continuation of campaigns that had seemingly already ended. For instance, after cybercriminals had shut down all the known command servers involved in the Icefog operation, we detected a Java version of the threat. The previous attack had primarily targeted organisations in South Korea and Japan, but the new version, judging by the IP addresses tracked, was only interested in US organisations," commented Alexander Gostev, Chief Security Expert, Global Research and Analysis Team.

Q1 in figures 

  • 33.2 per cent of user computers worldwide were subjected to at least one web-based attack during the past three months - a decrease of 5.9 percentage points compared to the same period last year.
  • 39 per cent of neutralised web attacks were carried out using malicious web resources located in the US and Russia; the combined figure for the same two countries was 5 percentage points higher in Q1 2013. They were followed by the Netherlands (10.8 per cent), Germany (10.5 per cent) and the UK (6.3 per cent).
  • The proportion of threats targeting Android exceeded 99 per cent of all mobile malware. Mobile malware increased by one per cent over the quarter.
  • At the end of 2013, Kaspersky Lab's collection of mobile malware stood at 189,626, but in Q1 of 2014 alone 110,324 new malicious programs were added. By the end of the quarter, there were 299,950 samples in the collection.

The full report is available at securelist.com

About Kaspersky Lab 

Kaspersky Lab is the world's largest privately held vendor of endpoint protection solutions. The company is ranked among the world's top four vendors of security solutions for endpoint users*. Throughout its more than 16-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 300 million users worldwide. Learn more at http://www.kaspersky.com.

* The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2012. The rating was published in the IDC report "Worldwide Endpoint Security 2013-2017 Forecast and 2012 Vendor Shares (IDC #242618, August 2013). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2012 

Contact: 

Berkeley PR
Lauren White
[email protected]
Telephone: +44(0)118-909-0909

SOURCE Kaspersky Lab

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

IoT & Smart Cities Stories
Digital Transformation and Disruption, Amazon Style - What You Can Learn. Chris Kocher is a co-founder of Grey Heron, a management and strategic marketing consulting firm. He has 25+ years in both strategic and hands-on operating experience helping executives and investors build revenues and shareholder value. He has consulted with over 130 companies on innovating with new business models, product strategies and monetization. Chris has held management positions at HP and Symantec in addition to ...
Dynatrace is an application performance management software company with products for the information technology departments and digital business owners of medium and large businesses. Building the Future of Monitoring with Artificial Intelligence. Today we can collect lots and lots of performance data. We build beautiful dashboards and even have fancy query languages to access and transform the data. Still performance data is a secret language only a couple of people understand. The more busine...
The challenges of aggregating data from consumer-oriented devices, such as wearable technologies and smart thermostats, are fairly well-understood. However, there are a new set of challenges for IoT devices that generate megabytes or gigabytes of data per second. Certainly, the infrastructure will have to change, as those volumes of data will likely overwhelm the available bandwidth for aggregating the data into a central repository. Ochandarena discusses a whole new way to think about your next...
CloudEXPO | DevOpsSUMMIT | DXWorldEXPO are the world's most influential, independent events where Cloud Computing was coined and where technology buyers and vendors meet to experience and discuss the big picture of Digital Transformation and all of the strategies, tactics, and tools they need to realize their goals. Sponsors of DXWorldEXPO | CloudEXPO benefit from unmatched branding, profile building and lead generation opportunities.
All in Mobile is a place where we continually maximize their impact by fostering understanding, empathy, insights, creativity and joy. They believe that a truly useful and desirable mobile app doesn't need the brightest idea or the most advanced technology. A great product begins with understanding people. It's easy to think that customers will love your app, but can you justify it? They make sure your final app is something that users truly want and need. The only way to do this is by ...
DXWorldEXPO LLC announced today that Big Data Federation to Exhibit at the 22nd International CloudEXPO, colocated with DevOpsSUMMIT and DXWorldEXPO, November 12-13, 2018 in New York City. Big Data Federation, Inc. develops and applies artificial intelligence to predict financial and economic events that matter. The company uncovers patterns and precise drivers of performance and outcomes with the aid of machine-learning algorithms, big data, and fundamental analysis. Their products are deployed...
Cell networks have the advantage of long-range communications, reaching an estimated 90% of the world. But cell networks such as 2G, 3G and LTE consume lots of power and were designed for connecting people. They are not optimized for low- or battery-powered devices or for IoT applications with infrequently transmitted data. Cell IoT modules that support narrow-band IoT and 4G cell networks will enable cell connectivity, device management, and app enablement for low-power wide-area network IoT. B...
The hierarchical architecture that distributes "compute" within the network specially at the edge can enable new services by harnessing emerging technologies. But Edge-Compute comes at increased cost that needs to be managed and potentially augmented by creative architecture solutions as there will always a catching-up with the capacity demands. Processing power in smartphones has enhanced YoY and there is increasingly spare compute capacity that can be potentially pooled. Uber has successfully ...
SYS-CON Events announced today that CrowdReviews.com has been named “Media Sponsor” of SYS-CON's 22nd International Cloud Expo, which will take place on June 5–7, 2018, at the Javits Center in New York City, NY. CrowdReviews.com is a transparent online platform for determining which products and services are the best based on the opinion of the crowd. The crowd consists of Internet users that have experienced products and services first-hand and have an interest in letting other potential buye...
When talking IoT we often focus on the devices, the sensors, the hardware itself. The new smart appliances, the new smart or self-driving cars (which are amalgamations of many ‘things'). When we are looking at the world of IoT, we should take a step back, look at the big picture. What value are these devices providing. IoT is not about the devices, its about the data consumed and generated. The devices are tools, mechanisms, conduits. This paper discusses the considerations when dealing with the...